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Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1 704(b). 

Status 

1)^ Responsive to communication(s) filed on 06 December 2004 . 
2a)D This action is FINAL. 2b)G3 This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1 935 CD. 1 1 , 453 O.G. 213. 

Disposition of Claims 

4) S Claim(s) 1-11 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) ^ Claim(s) 1-11 is/are rejected. 

7) Q Claim(s) is/are objected to. 

8) \3 Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) Q The specification is objected to by the Examiner. 

10) E3 The drawing(s) filed on 27 November 2000 is/are: a)^ accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. Q Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 



Attachment(s) 

1) S Notice of References Cited (PTO-892) 4) D Interview Summary (PTO-413) 

2) □ Notice of Draftsperson's Patent Drawing Review (PTO-948) Paper No(s)/Mail Date. . 

3) □ Information Disclosure Statement(s) (PTO-1449 or PTO/SB/08) 5 ) d Notice ° f Informal Patent Application (PTO-152) 

Paper No(s)/Mail Date . 6) O Other: . 



U.S. Patent and Trademark Office 
PTOL-326 (Rev. 1-04) 



Office Action Summary 



Part of Paper No./Mail Date 20050308 



Application/Control Number: 09/721 ,942 Page 2 

Art Unit: 2132 

DETAILED ACTION 
Response to Amendment 

1 . This action is in response to the amendment filed 12/06/2004. Claims 1 , 5, and 7 
have been amended; new claims 8-1 1 have been added. The specification has also 
been amended. 

Response to Arguments 

2. Applicant's arguments, see page 5 (last paragraph) and page 6, filed 12/06/2004, 
with respect to the rejection (s)of claim(s) 1 and 7 under 35 (JSC 103 have been fully 
considered and are persuasive. Therefore, the rejection has been withdrawn. 
However, a discovery of new prior art has necessitated new grounds of rejection. The 
delay in citation of the newly discovered prior art is regretted. 

Claim Rejections - 35 USC § 102 

3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 
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4. Claims 1-3 and 7-1 1 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Morar et al (6,678,822). 

Regarding claims 1 and 7, Morar discloses a method for encrypting restricted 
information in a database, the method comprising: reading a data type of a first data 
element; interpreting said data type to form a restricting character set; and encrypting 
each character of said first data element into an encrypted character selected from said 
restricting character set (col. 1, lines 36-46; col. 4, lines 7-12; col. 8, line 55 - col. 9, line 
14; col. 11, lines 37-58). . 

Regarding claim 2, Morar further discloses processing character-based 
information (col. 9, lines 9-14; col. 11 , lines 53-58). Inherently, characters of a character 
set are arranged in a pattern for a data type so that a data type such as number can be 
recognized. 

Regarding claim 3, Morar further discloses the encryption results in a data 
element having the same number of characters as the unencrypted data element (col. 
9, lines 9-14). 

Regarding claims 8-1 1 , Morar further discloses that the encryption is performed 
on a working copy of a database and that the encrypted characters are stored in the 
data element replacing the plaintext characters (col. 8, line 41 - col. 9, line 14). 

Claim Rejections - 35 USC § 103 

5. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 
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(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

6. Claims 4 and 6 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Morar as applied to claim 1 above, and further in view of Schneier ("Applied 
Cryptography"). 

Regarding claim 4, Morar further discloses replacing characters of a data 
element with random characters of the same data type (col. 9, lines 9-14; col. 1 1 , lines 
53-58). Inherently, each character is assigned an index value. However, Morar does 
not disclose adding a varying value to each index value before encryption. Schneier 
discloses an encryption method called one-time pad including the steps of converting 
each character to an index value and adding a varying value to each index value before 
encryption (Section 1.5, page 15). It would have been obvious to one of ordinary skill in 
the ad at the time the invention was made to modify the Morar method of to include the 
step of adding a varying value to each index value before encryption, as taught by 
Schneier. The one-time pad is a perfect encryption scheme. 

Regarding claim 6, Morar does not disclose using the DES algorithm in stream 
cipher mode. Schneier discloses using the DES algorithm in CFB mode of operation, 
which meets the limitation of DES algorithm in stream cipher mode (Section 12.2, page 
277, see Modes of DES). It would have been obvious to one of ordinary skill in the ad at 
the time the invention was made to modify the Morar method to use the DES algorithm 
in stream cipher mode. The motivation for doing so would have been that the 8-bit CFB 
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is generally the mode of choice for encrypting stream of characters when each 
character has to be treated individually (Section 9.1 1 , page 210). 

7. Claim 5 is rejected under 35 U.S.C. 103(a) as being unpatentable over Morar in 
view of Schneier as applied to claim 4 above, and further in view of Marshall et al. 
(4,866,707). 

Morar and Schneier (Section 1 .5) do not disclose adding adjacent index values 
pairwise from the left to the right using said initial value when adding the leftmost 
character. Schneier, in Section 9.3, discloses a cipher block chaining (CBC) mode in 
which adjacent blocks are XORed pairwise from the left to the right using an 
initialization vector with the leftmost unit (page 194, fig. 9.3 and "Prevent this by 
encrypting ... use some random bits from someplace"); the teaching of Schneier reads 
on the adding step of the claim. It would have been obvious to one of ordinary skill in 
the art at the time the invention was made to modify the combined method of Morar and 
Schneier (Section 1.5) to include the step of adding adjacent index values pairwise from 
the left to the right using said initial value when adding the leftmost character, as taught 
by Schneier (Section 9.3). The motivation for doing so would have been that the 
ciphertext block is dependent not just on the plaintext block that generated it but on all 
the previous plaintext blocks (page 193). 

Morar and Schneier do not disclose creating an initial value by hashing the 
encryption key. Marshall discloses a CBC encryption technique including the step of 
creating an initialization vector by encrypting a message key (col. 9, lines 13-19); the 
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teaching of Marshall reads on the creating step of the claim. It would have been obvious 
to one of ordinary skill in the art at the time the invention was made to modify combined 
method of Morar and Schneier to include the step of creating an initial value by hashing 
the encryption key, as taught by Marshall. The motivation for doing so would have been 
that the same message being sent a second time would be encrypted under a different 
key, so an outsider would not be able to gain much assistance from the repetition in 
trying to breach the encryption (col. 9, lines 27-33). 

Conclusion 

8. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

"Database Security in Oracle8/", Oracle Technical White Paper 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Minh Dinh whose telephone number is 571-272-3802. 
The examiner can normally be reached on Mon-Fri: 10:00am-6:30pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on 571-272-3799. The fax phone number 
for the organization where this application or proceeding is assigned is 703-872-9306. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 



MP 



Minh Dinh 
Examiner 
Art Unit 21 32 



MD 
3/8/05 




GILBERTO BARRON 
SUPERVISORY PATENT EXAMINER 
TECHNOLOGY CENTER 2100 



